Fantastic Scripts Fantastic News 2.1.1 News.PHP SQL Injection Vulnerability

2014-07-01T00:00:00
ID SSV:80275
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00

Description

No description provided by source.

                                        
                                            
                                                source: http://www.securityfocus.com/bid/15622/info

Fantastic News is prone to an SQL injection vulnerability.

Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.

Fantastic News 2.1.1 and prior versions are affected. 

http://www.example.com/news.php?action=news&category=[SQL]